Support for multiple rulesets about pulledpork HOT 6 CLOSED

This seems like a reasonable requirement... I had planned on adding it and will 
work on doing so now.

Oops, should have made this an enhancement.  It doesn't look like I have 
permission to fix it now, or can't figure out how if I do.

Our messages crossed in the ether, thanks for the quick response, and great 
work on PP.

Not a problem!  I'm sure you are aware that you will need to run pp 2x to 
achieve what you want now... one to get the first set of rules.. and the second 
to get the second.. while referencing the first set's rules file as a "local" 
rules file so that the sid-msg.map is fully populated.

JJC

Ok, check out what's in SVN now.. it should do the trick for you... Of course 
specifying any type of base policy (security, balanced, connectivity) will 
render the ET rules disabled, unless you specify some pcre foo in 
enablesid.conf ;-)  Please test and let me know what you think.

You will need to note the changes in pulledpork.conf!

JJ: That was pretty ridiculously fast.  I looked through the changes and they 
look reasonable, I'll give the code a go on my test snort instance in the next 
week or so.

You might consider labeling this as a 0.5.0 release instead of 0.4.x if it 
breaks config-file compatibility.  I wasn't able to follow on a quick 
read-through whether base_url and rule_file would still work if they were 
specified instead of the new rule_url option.  I'll give it a test when I try 
the code out shortly.